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(54) ACCESS POINT DEVICE AND METHOD OF AUTHENTICATION PROCESSING THEREFOR 

(57)Abstract: 

PROBLEM TO BE SOLVED: To provide an access point device and a ^ 
method of authentication processing therefor, with which a security f 
level can be remarkably improved, in a wireless LAN system. i 
SOLUTION: An access point device 18 is provided with an ; —-5^ ' -' J 

authentication request display means 1 6 for making the access point 
device 18 report the existence of a mobile station requesting 
authentication for obtaining the final permission of an authentication 
procedure inside an area, to a network manager for managing a LAN, * 
when the mobile station inside the area is to perform the 
authentication procedure, before the start of an association procedure 
and an authentication input means 15 for the network manager, who 
receives the notice, to instruct the permission of refusal of 
authentication to the mobile station requesting authentication. 
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^#>fy hKf^fi/TtSHii!-, fttnaBliE#*,^>r^^ 

jg^^ Lxmu®mm^um+zzb&¥rmb~t'zm* 

[«*JR5] ffilSBliE^tttt, IEEE802. 11 
^Shared Key Authenticat ion^MlT*&>£ ^ b 

*r4#a* b -r z> m &m 2 tj m 4 <n v ^ -rtiM^m <o t z ± 

x * W > h ««<7>BliE*aS*-SSfe« 
[0 0 0 1 ] 

3S«Xtf*^Bl£te31#*fc:HU StfUfctt, »«*:*J 

o a« <r>^mm b co^FIE & r ^ ^ Kit-r ^ it 
*b<DT#1zx#-(is hSSfiX^oBtEKkS^ifetcBBi- 

[0 0 0 2] 

^h^-<^> ^I^^T*. LAN (Local Area Netwo 
rk) &Mm-fZtr— *3&*i»*.T#T^S<i 

SSt'LAN^iitS, ^WS^'ft^LA 

t^fMW^^TV^ e I(D!7^f l/^LAN 
<DftSWfeStff£ L-Ctfc. gE{C. IEEE (Institute 
of Electrical andElectronics Engineers) {CjoV^T, 
SfllftSiltPS, IEEE 8 0 2. ll^^»^o C(7> 

t-^ D V^WTtti'lIt^SMAC (Media Acce 
ss Control : JSMfcT ^ -fc l^t^i^tt^ 

^aa^^^T, n-^V^ (roaming) «it>tl«r^ 
[0 0 0 3] f»^-t-^yh*t, LAN 

^^^^^«c^IE(c-SAb, Nti*««r*? 

d^tt, ^«CiIt-|)5o {BTttfck, ^COLANO 
^IJ^^^:. f^)L ANS:**t6^^- 

!7-ff l/^LANv'^r^Wf^ii, flfliE, — * 

»^ay (Association) ^JlliC ^ 5 6 # 5. flfl 
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SB, £E#0 IEEE802. 11 q}<r>is*T -MC&v^ 
^ h (access point) <DZ?/< — "f" <5 ^ fljl :n ]) 

[0 0 0 4 ] ^ory^x-^g^iicj;^ 

-ter — v^C, SS ID (Service Set Indentifier) £r 

— >a Vf^cOigm y y-t — ^«r. 5 T 

y ^m — Vjg^<Z>igf= y y-fe— 5?%, fttjfS^i^iC 

If ^ot^ y h 7-^ L J: ^ tS* 

rtos s i DJUfitL^x.fi ffiUMciT y^ 

iS^ofc»BiS*^ib<z), ^FZE^ryv- 

[0 0 0 5] IEEE 8 0 2. 1 llijS^rtt, GOfg 
fE3M^£te> Shared Key Authentication#Ji|H£ LT^ 

> ^ m <n m m t > ^ &■ ^ -r m r- & s * 

[0 0 0 6] 15 tC&^T, l^y^tl^^ - xD7 • 

i&JljMT 4 . 7 ^ !7 -V - ^yr-^^^[7 — ^1 

[0 0 0 7 ] hZftm&&&izJ: VMT&ZixZy, m.*y 
h 9 — t 7lzmm£*ltz.T? J £X7$<f V h AP 2 

<^7^t^^YyhAP2^/<-t^, ^-ps^^ur 

I11MT1, MT 2, MT3, MT4^ 
bMf&ZtlZ} 9 -fir 'X!/7 - ^j/M7- ^ l fcrfcj 

^t, frz^mm mti) m^£&A-r 
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ur. r y s/^— ^3 i/m<nmm^&%&~tz>m-&<ni/ 

[0 0 0 8] £-f, #I6^MT 1 fi. Shared Key Authe 
ntication^-ffifc «fc SrBB^-T £fc#>tf>, R 

MS*^ y-tr — v>l 7^t^#YyhAP2Cif| 
ap^he^i^8 (APiiE^i r l j ) itr, 

StC, - ^^T-^S, Initialization Vec 

it? tor^: Secret Key COM ^r> /<7>-#tL, WE P (ffir 
ed Equivalent Privacy) PRNG (Pseudorandom Numb 
er Generator) O T =f V X AiC^^^ffi^S^^fr^, 
1280c tett^), — mz&:-£ ^Challenge TextcOM 

mmMT i izmm^t z> 0 

[0 0 0 91 MT|g!EMS9 (A Pf£fiEM£l 

T2J ) HT, *nm&<&* y-fe — i^l €rSfIL7t^ 
MMTUi, ^^*^^ixSfIJi5Challenge Text^oM 
Sr, WEPOiff{t7^^IIXA|^P, Shared Secre 
T<? t Data^:, Initialization Vector^r^ 7 p« — ^ \Z . Pf 

ization Vector <!r 

^>FAP 2tdigff^e o 
[0 0 10] AP^lE^SIlO (APSM 

T2J ) £ LT, *BliES*^ y-fe — v?2 4:S«Ufc, 
7^t^#>fyhAP2!j:, Sft UfcPt^ft; ^ixfcChal 
lenge TextoOM^r. (^9#(C^fg L /clnitial i zation Vec 
tor^, ^#>£0-oTv^£9fBShared Secret Data$:£{C 
t'^-KL, ^O^^:^, ttJ^OTCCOChallenge TextCO 

[ooii] r. r r-(7>r y ->^n— v-h i^mmit, tu^o 

-fer — ^^(JO, SS ID (Service Set Identifier) 
^ (Ilfc7^-fe^^y h AP 2 IttJfSS S I D(d-C\ 

7y>'x->> 3 y^^ 5 ,t-^^ 4 fe^-T^^I^:, 

7y^x^i/ 3 y^ry-yx^a >jt^^y 5/-^— 
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ared Secret Key 0 Z. t X. T t ±Xtf<4 S b 

tt«*Sr*attP8. »»Bttltt, ^Shared 

Secret Key£, — »f^»n4^*K« 

Of, «S*H<Sn^: t>*< • 
[0013] 

Key^, If ^T^o t * ^ h 7 - ^ |C§ A I <t 5 ^ t 

^ y ^-f cotttfc-CfcG , ccoffj^fii o 0%ta«r-^5 
*>5S!Cfeixfc:£IH (^-^^^^, ^ffi) f*JT% *7«<-V 
[0015] 

[ »JH «|(D7 ?**7£4 is 40 

burnt* mm&m&xmmzixz** b7-*£<oj 
z/p-y^-xmm&ffiTt, s8lanx'J7^« 

«tc^3^r, ftiie^: y Tft<D&mm&* 7y^->3 

fillBL AN*fIt5^S/ HP — ^«3S#^*fb, BtE 

itmu*y b v—?*gm&iz&z>. «nEBtBE«:#«>-c^ 



[0016] «p^7 *-fer;*#Y > hgCoBEEaa 

\/ bmn^ <D^gmmm^x 0 . lWE^ftaxtfiinE 

7^t^#^yhiti\ Bf*«>BliE^IK*'R!*ft"f«* 

vhgW, flfjE»»B^^Bl££W^bJ: 5 

WEBBE*!**-*?** — S^fcSBttJS 
*>e y-fe — ^*r1TOE3»«i«^iE«i-«mt, fitJlSLAN 

<o*»W*f¥^I«:5i*n"*-*i: £ t>^, ftteBiiEtffTfcft 
6 * T- <z> ft jz ft B$ Rl *: R 56 b B HE # * * * * * 
- b£&Z>%2X^ *y^£. mU*5> b V - 9 ^M^T 
liuET ^i?;*^ 1/ hSW-^f^ MIEBIjEftfe 

at £ h-r affirm ft^oBMcoff 

^•^J:>9, miaBBEWfe^-f^^*^ AT-* h-TSHU 
{c, ft*o»liEffl : "5T3^iS^*iX'5 ^ > HutaT^'t^^'Y 
> hSSB^, WEBliElS*^ s^-t — ^4:, BfiEfF" 5 !^ b 
T89E»»^l-i£«-r6»4.*7- y^i* MEBUEJ^^ 
p< y * — LfclffiE»«i^3&^ ry^^aV 

tJSUE^Sfi^^BfiEd^Tb, r y^-v'g ^*««r 

[0017] *fc, ffit5^3^x s/^^li, ffiE-*y h 
57 — ^«3ffi*3&*. Bt£«:*E5-*"Sit^4-«rEr^-fe^# 

b t mib^ ft m igfs-r s t> o r- *> o r t> x ^\ 

[0 0 18] ^7t, S!!5S3^7^t'H *»E*y h 
!7 — ^«3ffi*^v BSE**gS^fifl 1 " 5 r^S*^Sr#JEr 
?-**i£<< is h^gtcit^-rSM^, fflEBIiEft^^'r 
J*T *} b-fZt, WEBlE#«lS^*5tf Sfti*^ 
^■fe — ^^^BUBS^;* y-fe — i^ft, BlEliSi: bT 

fliifB^i&^t-igff-r^ fcOTfcott £i\ *fc, at* 

bv^*ffWft««fc bTIi, WEBK^tttt, IEEE 
8 0 2. 1 1 ^^^-f" ^Shared Key Authentication^ 

[0019] 

[0020] *'mm<nj&m<nT v F^ii 8 

H mtBgl 5 cor ^-ir^^-T > h AP 2i:l#«iXR 
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tR4xi;7l:#ftt5»»flMTl. MT 2, MT 
3 , MT 4 d^^J^^n^, V-l-YUX • xiJ7 • ^ ^ 
h I? — * 1 icis^t, fttJlBT ^-tr^^^ >• h AP 215, 

[0 0 2 1 ] 01 \Z$>\,^X, Tp-tXtfJls hgtl 8 
H^cD^Sj^MT 1 , MT2, MT3s MT 4 t CO 

<vr—v y ^^^fe^^rfi 1 5 Tt^or y s^sc— isa i/mm 

1, MT2, MT3, MT 4 £ 2fc*$*l-5S!|«P;* ^i? — 

is i, * vm^i 3^, BaE^asrtT ?m&\z. % 

r-, 17 Y t ^ • xy 7 • * y h 17-^ 1 if Iffia 
19: 16 (5i*D^«) <3b> BSES5**^S:i 6^J:?)Sg 

■ ^ y r - ^ $/ h * i Sr^s-rs^— ifa*, -t 

[0022] £*t\ Jb^^J:5{c«^^Hfcr^^^^ 
# -r v hgf i stof-^ y ^^*tt^«iicsixs» 

[0 0 2 3] fifties 5 t*5tf58tSMT 1 Bi^M 
m&ftlttMKD&nmt U ^tb^MT2, MT3, M 

T4f5, fEtcr^ ^ h^si 8^7y^x-> 

!7-^^fat5x-f)55 4 *:<OBliE£B s *rU -e^ 
7yi/x^i/ 3 y^|:j ; ^ r*-i?;*#>r > h 

3Sttl 8 £<Z>:r-* y ^ £;h,5»-fr £\ 0 2 & 
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[0024] m 2 mmw^<om^<Dmm^)m<offlffl 

^^WiCj:^ £~f» Shared Key Authentication^ 

isi&r is hggi 8(cinm-r5c 

[0 0 2 5 ] 7^^^yh8ti8i:is^ 
ilff Msl^lS: i 2 $:^IT, r ^ir — v^Sfi Lfc 
Bi£/T y yfei^g 1 3ht, APBlEftua 

1 im 2<7>#-§-2 0#H8) ilt, C«>KSE?tt#oa 
i0 flfcSftlCRfcS^ £ 5, Initialization Vecto 

r<!rSecret Keyt^M^r^^ y * — $ t L , WE P (WiredEq 
uivalent Privacy) PRNG (Pseudorandom Number Ge 
nerator) =f ]) M#§v^{jf ?fS:g «r=ff t\ 12 

8 0 c t e t <7D — iEM$:3:£Challenge Text <D fit £r^fcb 

12^ tr^i^MT i izmm-TZo 

[0 0 2 6 ] »cjc, MTffiiEtel2 1 ^ IT. *B1EJCS 

J; 5 Challenge TextCOfll^, WE P COPf-^ibT 
^ !)XA|CtV\ Shared Secret Data Initial! zat ion V 
ector^r^^^y — ^{cL-rfff^k^rfiri/^ ^cofl^rlniti 
alization Vector££=M, WMM^ ^ y^ — is 2\Z.^^> 

t^^^fy h^f 18{^^r, 4*j»aiff *&3ffi^« 1 2 

S'HVfelfSntt, AP^HEM^2 (gl2CO#-^-2 
2#BS) itT, LfcPff#ffc£nfcChall8nge Text 

COftt^r, [Rl3#{cSff Lfelnitialization Vector^ ^fdt> 
^ao~C 1^5 Shared Secret Data^rS^v^ a — K ^:CO 
^ ^^^ttf^cOTuOChallenge TextOM^ii^ -^tl^ 
f^ — -e^iX^\ APfgHEMS3 (i2 0#f 2 3#I) 

[0027] m4&, ±mt * -tofts' is b<nmm>$±m 

fi, 7^t7/f^>hSf 18^I/7yv'x^^ 3 

SEft%^*>Sci:Srii*PL (^f^S30) , ^n<h 
IrI«P^, ft*O^PJ{cK^*ttfcBliEft*)^>r^4:^^ 

40 - h^-fct 3 1} , mm^xftib (^r$/7 

S3 2) ottlCASc — BfE»^T?*>Sr icoa 
^0$r§it7t, BtiES**^#iar i 6 15, SlCIc, ^ ^ h 

[0 0 2 8] CCT, BtE/r y v-^x — v-a lstikmz£VR 
1 3^, Btt»W^i^>fA7!) h-TSWJ^BSiEA 

»^TOAA^J:SBliE« ; '5rAA<7>a*D«rSWixli, BUE 
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1 2 ^ItWMT 1 U7^S3 
3) „ 

[0 0 2 9] i2l:IoT, ^HEi^^^ ylZ — v?2 & 

^(t Ltz&mmMT i k^tas^* 

[0 0 3 0] ZZ.X\ 7 >- b^S 1 8£*3^ 

y >ji— is a^Xkm (0 2(O#f 2 4#HR) iLT, T 
y v/x-^/g yt-^WS S I D (Service 

Set Identifier) tCT, ^l^MTl^rMJL, f$>&: 
^^/:ry^x-^3yfFiI;^M:^i\ t©7V 

l^jy^x-v'a yfP^IIr/Tlf'Ty^-v'a 
j/-fer — v>£r»»BMT 1 ^Sttilli, ^I&^MT 1 t 

[0 0 3 1 ] #cl^ f»T 1 Bffi^ttt&IS^ 

[0032] i3tt, mm^/f^ 2±t $ bm^(om 

T, »»SMTlft t>. Shared 

Key Authentication;*^^ &BSiE^fifc# 

[0 0 3 3] 7^-fe^^yh»ll 8fcliSV*T, *H 

SSE/7y^x— ya yJflil^Si AP»I 
1 (i3^2 5#S) £ It ^0>BtiE3M«#<aS 

ftfl-ft^5r^^T*#5, Initialization Vecto 
r£ Secret KeyOffi^/^ 9 ;* — ^ t U WE P (Wired E 
quivalent Privacy) PRNG (Pseudorandom Number G 
enerator) (DT^xf JJ XA|C^^*I«S[ £rtT I \ 12 
8 0 c t e t CO— ^(C^:^ ^Challenge TextOfflfrjttH 

jaa^ai 2^^lt, »»smt i icigft-rs. 

[0 0 3 4 ] #C*C, MTfRiSEtea (H3<D#-§-2 6# 
BR) ilt, *«KJfe#^ -x-fc — ^l«:36«U/S:3»«i« 
^CO^^^tlSChallenge Text(D{ii$: x WE 
PcOPf-^-jbT^^y X-MC$£t\ Shared Secret Data 

Initialization Vector £^ V * — ^ {-B£-*Ht:3:fir 
</\ ^coffl^rlnitialization Vector £ f£HEg5fc 
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-f&o T?±X7$J V hgf 1 8{Cjo^T, 

fcEIE/7y^^v' 3 yMS^l 3i^, AP^HE^ 
^2 (B3©#*2 7#I) t Lr*ftLfcl*#ft$ft 
7tChallenge TextGOfit^:, I^P#K:§{f Lfc Initial izati 
on Vector £^#>£0oT l^S Shared Secret Data&glC 
f^-Fl, -tOJKSri: StJ^^>7i; ^Challenge TextCOM 

u ^ti&m--x-htitfAPmm&km3 <@3*> 

70 ^|4l:^t7n-©^f 3 O^fy^S 3 

2, ^7^7 P S34(?)Mx'fe5c 
[0 0 3 5] ^f, ^(D^IJC^I^T^, r^-tr;*^ 

^ h^gi amf&m/TVis^—isa ^%±m^mi 3 
ft, Bttff****«i 6\c&^xmmfthx&>hz t 
^•ii^oL ur^$3o) , tJtitmmz, ftic^B# 

^S3D . biea*#*> yys 3 2) co^tSM 

A5 D — #, Bll^^fe5C£<oa&&StffcBliEIS 

^#si6it actc, *y b v—t&igmtz^ 
[0036] BiE/ryv'x— ^H^fes^w 

1 3tt, Eli£#t^^v^^^i,7<) h-rSWUBlEA 

1 2 ^r^rUT^lft^MT 1 {C^fg-r^ Uf^S3 
4) 0 miiEA^^^ Ur^S32) 

{c*jv^t, BSE»%^-f^^^-f at ^ b-t stilts mm 

30 lg^*:*UfcfME«:»^ sx-t-s? 2 «r**a«fta^« 
4) . 

[0 0 3 7] 0 3Clot, ^RHJffi:*^ yt-^2S: 

^—?iztt\^xmm&&&oftz.t&m%i'tz> m 
[0 0 3 8] ::T*f^Ltt^, we pcoryb 

*0 ^"JXAIi, R S A Data Securitylnc. CDR C 

X VMJZZriXteV , ^7t, 7y^x-> 3 yMI (H 
2CO##2 4#RP.) t>. IEEE 8 0 2. llt'M^ 

[0 0 3 9] - ^T-OBa£#^^^^{c^^^ix 

5t? xl-^, tt*fcH3£HriB-r*>st^^i-5. 
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[o o 4 o] £i±&-<tc£ o\c *mm<ommx*n. r 
n^^-fyh^ti sis, xyr^tw, rv 

^ Irl^Dt 5EIESt^^ 1 6 t , i§*n*S:tffc.* 
BBEOffBrxtttleffSrlB^-rSBliEAA^ai 5 £ £<t 

if^, tt^r y is=z—isa viJ: 5 £ tr^s^i 

[0 0 4 1 ] £7c, ^1 ^^HEcO^jiHti. IE EE 8 0 
2. 11T\ ty^a Vtiri^^r^s! Shared 

Key Authentication^Ji|I£|^LT^£!7^^U;X L 20 
AN^^X-MC&^T tit, T^t^^-fy hgfiCOV^ 

[0 0 4 2] 

lasses] l*i$LfcJ;5^ 

ft A; fe$S*t « ^1 * < *ftt 5 I ^ 
[Bffi©(li*ftRfl] 



12 



[Hi j *mm<onm<z>mm<7>T > hgto 

[@3] *^i«or ^-^^tKyv hSSficoRiiEjE 
[@4] *^*o«l»7 ^ y h 8tor ^ t 

[H5] «^-7Yt^LAN^7AOtii&iM 
[061 ^^(^^Yir l^^L AN v-^^ACO^fE^JiII^ 

£0 

3 $i^MT l 

4 fSjfMT2 

5 #S^MT3 

6 WMT4 

7 5/ h !7— ^ 

1 2 *i*iiift tn-m^gt 

13 siiE/r y->3i— >a ^*&3ffi^« 

14 *y b !7-^^(y^-7x^^ 
1 5 ElA^Jf^ (A^#J8:) 

1 6 BKE«^*^#« (ii*o^«) 

1 7 tlfi»K 

1 8 7^«#^y hSSS 
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